CVE-2025-13126 | tomdever wpForo Forum Plugin up to 2.4.12 on WordPress post_args/topic_args sql injection

A vulnerability marked as critical has been reported in tomdever wpForo Forum Plugin up to 2.4.12 on WordPress. Affected by this issue is some unknown functionality. This manipulation of the argument post_args/topic_args causes sql injection.

This vulnerability appears as CVE-2025-13126. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More